Hide Forgot
Description of problem: The documentation to integrate keystone with AD, IDM, and generic ldap currently has the user configure the auth_uri and url to point to the controller. However, this can be misleading in deployments with more than one controller. This should use the keystone endpoint VIP instead of the controller IP for multi-controller environments. [keystone_authtoken] auth_uri = http://controllerIP:5000/v3 auth_version = v3 https://access.redhat.com/documentation/en/red-hat-openstack-platform/9/single/integrate-with-identity-service/#configure_block_storage_to_use_keystone_v3_2 This also applies to the guide for RHOSP 7 and 8.
Backporting to earlier guides.
Backported to osp10/9/8/7 guides.
Thanks for raising this bug. All guides have been republished to include the note. For example: https://access.redhat.com/documentation/en-us/red_hat_openstack_platform/9/html-single/integrate_with_identity_service/#configure_block_storage_to_use_keystone_v3_2